Neosense theme version 1.7 contains an unrestricted file upload vulnerability. An attacker can upload any file to the site without logging in, and achieve remote code execution by uploading a file with extension .php or .phtml.
» more

There's a moment in every nerd's life when you wished you hadn't updated to that shiny latest software version. For us, such a moment happened with FreeBSD 10.1, with freezes and panics all over the place. So what do you do? Well, you can do a tedious clean install... Or just downgrade your running system to FreeBSD 9.3! It turns out that freebsd-update makes this hilariously easy. When life gives you eggs, make eggstasy!
» more

InfiniteWP allows an administrator to manage multiple Wordpress sites from one control panel. According to the InfiniteWP homepage, it is used on over 317,000 Wordpress sites.

The InfiniteWP Admin Panel contains a number of vulnerabilities that can be exploited by an unauthenticated remote attacker. These vulnerabilities allow taking over managed Wordpress sites by leaking secret InfiniteWP client keys, allow SQL injection, allow cracking of InfiniteWP admin passwords, and in some cases allow PHP code injection.
» more